Easy to setup with good auto-implementation and good rule reviews
What is our primary use case?
My client is from a finance background and has more than 100 firewall clusters deployed, that too from different OEMs, for added security. Thanks to historical reasons, some of the firewall policies are poorly managed with tons of rules, and nobody knows what policies are in use and what are not, what policies are redundant, and what are vulnerable.
On top of this, the client Info-sec policy enforces strict one-to-one rules, which, considering the size of the business, leads to the implementation of hundreds of new policies every week.
Firewall Rule analysis & New rule implementations were a challenge, and there comes the AlgoSec.
How has it helped my organization?
We started using AlgoSec to review existing firewall rules. To our surprise, thousands of policies were redundant, and many risky rules were also present.
Due to their large rule bases, firewalls used to have high CPU usage during peak business hours. The client was able to remove redundant rules and strengthen risky rules to save the network from compromises.
Implementing firewall rules was another challenge. The same rule had to be implemented on multiple firewalls from different OEMs. AlgoSec made our life easy.
What is most valuable?
Both analysis and Implementation engines/features are found to be very much valuable since they helped the client to manage the show better.
Implementations used to take a long time, both in terms of approvals and manual implementations. Errors during implementation were another challenge. Delays in policy implementations impacted new feature rollouts or application developments. AlgoSec auto implementation came into the picture, which helped the right departments to approve policies and implementations.
What needs improvement?
AlgoSec is slow when it is loaded with too many firewalls and policies. A plan to take care of heavy usage is to be considered. Support of all firewalls and policy features to be enabled.
AlgoSec should support in identifying most hit rules and re-ordering existing firewall rules - this is a very key to manage firewall CPU.
A clustering of AlgoSec can also be considered. A group of AlgoSec servers managing large client bases geographically or datacenter-wise or function-wise. A head reporting unit and child processing units.
For how long have I used the solution?
I've used the solution for seven years.
What do I think about the stability of the solution?
What do I think about the scalability of the solution?
The solution needs to improve scalability.
How are customer service and support?
The customer service is good.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
No other solution used before.
How was the initial setup?
The initial setup was straightforward.
What about the implementation team?
The implementation was handled in-house.
What's my experience with pricing, setup cost, and licensing?
I am into operations and not aware of cost or pricing.
Which other solutions did I evaluate?
AlgoSec was the only option considered.
Great visibility, automation, and mapping
What is our primary use case?
My primary use case to use this solution was to get visibility into my multi-vendor network environment into a single pane of glass making it easy to have compliance and audits done seamlessly.
Also, it is letting me know if any changes are required over different network devices if I bring a certain new application in the environment (discovering its dependencies) and then push the changes from the single console. Also, it needed to verify if there are any unnecessary rules with the attribute "any" over all the firewalls that the solution was able to cover.
How has it helped my organization?
It helped me in managing the multi-vendor network devices with also mapping the required network level prerequisites for my application to be able to handle their network needs in an automated and seamless manner. It also removed the need for multiple approvals with Fireflow.
It also made compliance and audits very easy for my organization. It was able to give visibility of the changes on the firewall with a who-when-what scenario. It helped me to document all the risks related to any change request that I made.
What is most valuable?
The way the solution helps in managing, reporting and seamless security policy change automation for the connectivity between the network devices and the applications is great.
The visibility provided by the single pane of glass for managing multi-vendor firewalls is excellent and then pinpointing network connectivity issues is certainly on a very good level.
The majority of the value comes with automating of the entire security - i.e., the policy change process from design and submission to proactive risk analysis, implementation and auditing.
What needs improvement?
They need to improve the web interface to be a little more interactive and friendly. It's still not bad, yet it could improve.
They could improve AlgoSec academy, as there are some bugs when it comes to advancing resources. When trying to do the certification, I got stuck in one module, which prevented me from completing the certification.
The only downside of AlgoSec is that it seems to need some updates as it relates to UX and potentially some more outlined integrations. Specifically with cloud platforms and tools.
For how long have I used the solution?
I have been using the solution from the last six months and have been quite happy with it.
Which solution did I use previously and why did I switch?
This was my first solution and I have been continuing with this solution only for future needs until it satisfies all of my use cases.
Which other solutions did I evaluate?
I evaluated other options as well, however, where their capability ended, i.e. firewall analyzing capability, AlgoSec provides much better capabilities.
current Algosec user non bias review
What do you like best about the product?
very user friendly accessing menus and GUI
What do you dislike about the product?
still having issues accessing some of the netqork devices for monitoring and analysing , NSX-T environment still not fully supported , this is quite important since most of the companies migrating their app to Cloud and NSX-T is an important technology widely used
What problems is the product solving and how is that benefiting you?
central dasboard to manage firewall rules and policy , audit reporting , firewall assurance
Enables us to clearly see the accesses to the application in the environment
What is our primary use case?
We have four firewalls and two routers in our environment. We also have a business application. At first, it was very difficult to connect to each firewall individually, see my environment as a whole, and determine where traffic was being blocked and who made changes. AlgoSec provides a solution to all of this in a single platform.
Being able to see where traffic is blocked using traffic simulation provides me with great convenience. Additionally, with FireFlow, I can handle this in a single action instead of taking actions on each firewall individually.
How has it helped my organization?
Thanks to Algosec, especially with the FireFlow and AppViz modules, I have managed the regulation compliance I need to adhere to through baseline compliance and checked my compliance with it. Without connecting to my firewalls one by one, I was able to handle all my changes with FireFlow in a single-handed manner according to a specific plan. I was able to clearly see the accesses to the application in my environment and the vulnerabilities of the application. The reports section was very useful in tightening up my policies.
What needs improvement?
Country-specific regulations should be added when required. Doing this on my own with baseline compliance is quite difficult.
Additionally, I would like AlgoSec to provide suggestions such as "this object includes that object" for my objects on the Check Point firewall. For my Fortigate manager, the support of the active change feature is important to me.
Lastly, the FireFlow interface could be simplified a bit more. I agree that it is user-friendly, but on the other hand, it can be difficult to organize and find certain things.
For how long have I used the solution?
I have been using AlgoSec for one year.
What do I think about the stability of the solution?
We haven't encountered any interruptions while the product is running. It operates very stably.
What do I think about the scalability of the solution?
We can add devices very quickly whenever we need to, with additional licenses.
How are customer service and support?
I received sufficient and useful responses within a maximum of one day.
How would you rate customer service and support?
How was the initial setup?
Straightforward. We imported the ova file and that's all, then just clicked add devices.
What was our ROI?
It has been a very useful and suitable investment for us.
What's my experience with pricing, setup cost, and licensing?
The setup is very easy, and while I can't say anything definitive about the pricing in terms of competition, licensing is also quite straightforward.
Which other solutions did I evaluate?
Outstanding Product!
What do you like best about the product?
AlgoSec has been instrumental in running policy analysis jobs against our CheckPoint environment for PCI. A great solution for all our PCI needs!
What do you dislike about the product?
There are now downsides to the product. It is information and very useful.
What problems is the product solving and how is that benefiting you?
AlgoSec is helping us to solve issues with our CheckPoint policy management, a geat tool.
It is fantastic plataform tayler made for all business-sized
What do you like best about the product?
Simplicity and Ease Integration, implementation
What do you dislike about the product?
Customer Support, Frequency of use, features
What problems is the product solving and how is that benefiting you?
orchestration security
Algosec for firewall auditing
What do you like best about the product?
I can quickly review firewall changes and drill down into risky settings.
What do you dislike about the product?
The topology map is useless. Can't save it after making manual manipulations.
What problems is the product solving and how is that benefiting you?
We are trying to use the tool as a firewall manager but it doesn't seem to have the foot hold we were hoping for.
Algosec enabled us to complete a complex migration project removing a lot of manual work.
What do you like best about the product?
Algosec enabled automated conversion of FW rules from an old firewall to a new firewall whilst also converting rules from non zone based to zone based. This saved countless hours of manual work and also identified gaps in rules and removed unecessary rules too. Harry Lewins was also incredibly helpful to deal with as too were his support team.
What do you dislike about the product?
Nothing that we encoutnered with the product was a problem, we had to get around some security requirements but they were all internal issues.
What problems is the product solving and how is that benefiting you?
It allowed us to migrate from an old firewall platform and also do a complete review of all firewall rules at the same time.
Great firewall management tool
What do you like best about the product?
value for price, lot of functions, useful Fireflow workflows, grat Firewall policy analytics
What do you dislike about the product?
not all functions supported across diferent vendors in FireFlow
What problems is the product solving and how is that benefiting you?
one policy around all firewalls
compliance reviews
It is very important to determine the correct use case for your infrastructure itself.
What do you like best about the product?
All functions are clickable from the GUI.
What do you dislike about the product?
Some functions are quite hidden or placed illogically in the GUI structure.
What problems is the product solving and how is that benefiting you?
Making it easier to enter change requests and speeding up the approval process.
